CVE-2014-7883

Currently unrated

Key Information:

Vendor: HP
Status: Universal Configuration Management Database
Vendor: CVE Published:; 15 February 2015

Summary

HP Universal CMDB (UCMDB) Probe 9.05, 10.01, and 10.11 enables the HTTP TRACE method, which allows remote attackers to obtain sensitive information by reading the headers of a response.

References

http://www.kb.cert.org/vuls/id/867593

third-party-advisoryx_refsource_CERT-VN

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/doc...

vendor-advisoryx_refsource_HP

http://www.securitytracker.com/id/1031688

vdb-entryx_refsource_SECTRACK

EPSS Score

68% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 15, 2015
Vulnerability Reserved
Oct 6, 2014